[website] r1634 - in html/trunk/blfs/errata: 10.0 10.0-systemd

Tue, 20 Oct 2020 14:22:20 -0700 

Author: ken
Date: Tue Oct 20 14:22:08 2020
New Revision: 1634

Log:
Errata for freetype-2.10.4.

Modified:
   html/trunk/blfs/errata/10.0-systemd/index.html
   html/trunk/blfs/errata/10.0/index.html

Modified: html/trunk/blfs/errata/10.0-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/10.0-systemd/index.html      Mon Oct 19 19:26:11 
2020        (r1633)
+++ html/trunk/blfs/errata/10.0-systemd/index.html      Tue Oct 20 14:22:08 
2020        (r1634)
@@ -117,7 +117,7 @@
            exploited to cause Wireshark to crash. To fix these vulnerabilities,
            update to Wireshark-3.2.7 or higher using the instructions in
            <a 
href="../../view/systemd/basicnet/wireshark.html">Wireshark-3.2.7</a>.</li>
-       <li>After release, several dozen vulnerabilities were discovred in
+       <li>After release, several dozen vulnerabilities were discovered in
            Seamonkey. To fix these vulnerabilities, update to Seamonkey-2.53.4
            or higher using the instructions in
            <a 
href="../../view/systemd/xsoft/seamonkey.html">Seamonkey-2.53.4</a>.</li>
@@ -147,6 +147,12 @@
            arbitrary code execution. To fix this vulnerability, update to
            lxml-4.6.1 or later using the instructions in
            <a 
href="../../view/systemd/general/python-modules.html#lxml">lxml-4.6.1</a>.</li>
+       <li>After release, a security vulnerability was discovered in freetype
+           (all versions since 2.6), a buffer overflow when processing TTF 
files
+           which include PNG glyphs - this is being actively used in the wild.
+           To fix this vulnerability, update to freetype-2.10.4 or later using
+           the instructions in
+           <a 
href="../../view/systemd/general/freetype2.html">freetype-2.10.4</a>.</li>
      </ul>
 
 <!--#include virtual="/common/footer.html" -->

Modified: html/trunk/blfs/errata/10.0/index.html
==============================================================================
--- html/trunk/blfs/errata/10.0/index.html      Mon Oct 19 19:26:11 2020        
(r1633)
+++ html/trunk/blfs/errata/10.0/index.html      Tue Oct 20 14:22:08 2020        
(r1634)
@@ -115,7 +115,7 @@
            exploited to cause Wireshark to crash. To fix these vulnerabilities,
            update to Wireshark-3.2.7 or higher using the instructions in
            <a 
href="../../view/svn/basicnet/wireshark.html">Wireshark-3.2.7</a>.</li>
-       <li>After release, several dozen vulnerabilities were discovred in
+       <li>After release, several dozen vulnerabilities were discovered in
            Seamonkey. To fix these vulnerabilities, update to Seamonkey-2.53.4
            or higher using the instructions in 
            <a 
href="../../view/svn/xsoft/seamonkey.html">Seamonkey-2.53.4</a>.</li>
@@ -145,6 +145,12 @@
            arbitrary code execution. To fix this vulnerability, update to
            lxml-4.6.1 or later using the instructions in
            <a 
href="../../view/svn/general/python-modules.html#lxml">lxml-4.6.1</a>.</li>
+       <li>After release, a security vulnerability was discovered in freetype
+           (all versions since 2.6), a buffer overflow when processing TTF 
files
+           which include PNG glyphs - this is being actively used in the wild.
+           To fix this vulnerability, update to freetype-2.10.4 or later using
+           the instructions in
+           <a 
href="../../view/svn/general/freetype2.html">freetype-2.10.4</a>.</li>
      </ul>
 
 <!--#include virtual="/common/footer.html" -->
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to